Growi@3.1.11 Security Vulnerabilities and Issues — Growi@3.1.11 CVE List

Lucene search

WeseekGrowi3.1.11

4 matches found

CVE•added 2018/09/07 2:29 p.m.•41 views

CVE-2018-0655

Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via the app settings section of admin page.

4.8CVSS4.9AI score0.00176EPSS

CVE•added 2018/09/07 2:29 p.m.•37 views

CVE-2018-0652

Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via the UserGroup Management section of admin page.

4.8CVSS4.9AI score0.00176EPSS

CVE•added 2018/09/07 2:29 p.m.•36 views

CVE-2018-0653

Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote attackers to inject arbitrary web script or HTML via Wiki page view.

6.1CVSS6.1AI score0.00229EPSS

CVE•added 2018/09/07 2:29 p.m.•36 views

CVE-2018-0654

Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the modal for creating Wiki page.

6.1CVSS6.1AI score0.00229EPSS